why do you want to send them to avast lab?
and what do you mean by. nothing happens?
p.s I also run a full scan with malwarebytes while those two msi files in avast quarantine and everything came up clean
of course, infected files moved to avast quarantine can not be scanned/detected by Malwarebytes as no other program then avast have access to avast quarantine
I try to send it to labs through the chest but nothing happens, tried to do the same with previous detected files and it works but not with those two files
I also detected a problem on starting windows today, I have a timed start where I can choose weather to start with windows or ubuntu and today this feature doesnt work, I also tried to run a boot scan just now and this also doesnt work at all, windows start without the boot scan and without even allowing me to start on safe mode via F8 button - its scary here
:Commands
[CREATERESTOREPOINT]
:OTL
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - Reg Error: Value error. File not found
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - No CLSID value found.
O3 - HKU\S-1-5-21-2025429265-1275210071-682003330-1003\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
O3 - HKU\S-1-5-21-2025429265-1275210071-682003330-1003\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKU\S-1-5-21-2025429265-1275210071-682003330-1003\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
[2010/01/13 16:44:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
:Commands
[resethosts]
[emptytemp]
[Reboot]
[*]Then click the Run Fix button at the top
[*]Let the program run unhindered, reboot the PC when it is done
[*]Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
well I noticed a difference in startup behavior today, I have Ubuntu on a partition and the programmer that installed it gave me 15secs time on startup to choose weather to run windows or ubuntu, today although the clock gives me time, I cannot choose or move to other selection with the keybord, neither the F8 responds
I had the privatefirewall program recently installed and uninstalled it after I posted here to check if it gave me problems or conflicts, this improved the behavior of Avast, I managed to update the avast definitions and program from inside the program app, and also the boot scan worked and no infection came up, still no response on the startup option though I am not sure what should I check about, maybe it has something to do the the windows XP end of life I took a screenie of the utility manager from the boot ini should I upload that one too?
PS: I went into the virus chest again and re checked the files that were supposed to be infected and now the scan says they are clean, but still cannot send them to the labs through the chest
tried that in all different usb ports, I also tried to see what happens with my old keyboard, and it doesnt even recognizes it it had an older kind of plug the round one not the flat sigh…
I noticed one more thing while searching, there are two new windows tasks that have probably been installed after the last update, that reffer to the end of life of XP could that have blocked some startup function - also I had installed Google Chrome browser and didnt like it that much and uninstalled it a day before the viruses appeared, and I still have two googleupdate tasks in scheduled tasks pannel I have a screenie from that too if its of any use
Ι was looking at the scan result files I uploaded and noticed this entry on aswMBR report "17:18:52.406 Service pwipf6 C:\WINDOWS\system32\DRIVERS\pwipf6.sys LOCKED 32" could this be causing the whole problem? I dont understand what this means but that locked thing makes me curious
ok I will see what I will do, I may have to call someone over so not burden you with it thank you so very much for all your kind assistance and sorry for being so silly about this all at least the files with the viruses seem to be ok now and avast is running smoothly, is there another firewall I could install till I manage to migrate to another windows platform? things are hectic with money here in Greece and everything around computers is expensive so I try to stay safe as much as possible with minimum budgets
thanks again to both you essexboy and Pondus I will later upload the results of the last fix you gave me just in case this works or adds up something to maybe help others
I am sure some one else knows of an XP compatible firewall, I have not used XP for a few years now. But ensure that you remove all of the old firewall first
Subject to no further problems
I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems
Now the best part of the day ----- Your log now appears clean
A good workman always cleans up after himself so…The following will implement some cleanup procedures as well as reset System Restore points:
WARNING:Java is the #1 exploited program at this time. The Department of Homeland Security recommends that computer users disable Java
See this article and this article.
I would recommend that you completely uninstall Java unless you need it to run an important software.
In that instance I would recommend that you disableJava in your browsers until you need it for that software and then enable it. (See How to diasble Java in your web browser and How to unplug Java from the browser)
Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:
CryptoPrevent install this programme to lock down and prevent crypto ransome ware
I will later upload the results of the last fix you gave me just in case this works or adds up something to maybe help others
